Go Premium for a chance to win a PS4. Enter to Win







A virtual private network (VPN) is a network that uses a public telecommunication infrastructure, such as the Internet, to provide remote offices or travelling users access to a central organizational network securely. VPNs encapsulate data transfers using secure cryptographic methods and other security mechanisms to ensure that only authorized users can access the network and that the data cannot be intercepted.

Share tech news, updates, or what's on your mind.

Sign up to Post

I am currently battling with getting an SSTP VPN setup on my test network and wondered if I am missing something.

I had a 2008 Server which ran SSTP however this was on a single a server which also had Exchange and AD installed. An SSL cert was purchased for Exchange and the same cert was used for SSTP.

I have a new server which now has Hyper-V installed and I am running a DC and Exchange server both on Server 2016. I have installed the certificate for the exchange server and that is working fine however I am trying to use the same certificate on the DC for setting up SSTP. I have imported the cerfiticate as it says on various pages however the drop down menu with RRAS (see image below)

I don't do that much with certificates that often and it might be that I am missing something however I managed to set this up on server 2008R2 with no problems however I am wondering if that was because everything was on 1 server which simplified things?

Any help or tips regarding this or certificates would be much appreciated.
Independent Software Vendors: We Want Your Opinion
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

I am having trouble with a couple things in regard to the following.

I Have an ASA where Cisco anyconnect users that connect to reach resources on the network. however, they are not able to reach anything over the tunnel that is from the ASA to the Checkpoint FW. everything else is just fine.

Is there any main "Gotchas" with Cisco ASA to CheckPoint firewalls?

Thank you.
We have multiple branches and sites that are connected to main Data Centre. As for now the WAN is protected (traffic is encrypted via IPSec). Objective: I want to make sure that all traffic when it leave the host is also encrypted. There should be no gap (un-encrypted data in motion) regardless within the LAN or WAN.
The concerns from the network engineer, is that if we implement Host to Host IPSec, it will be a tunnel within tunnel. It will decrease network performance.
How do we ensure all the traffic are encrypted? Any other available solutions?
I have several colleagues complaining that when they are on VPN - when they download something - the download stop in around 75mb.  It then gives a network error.  Users can resume the download - but again causing issues.

Is there a setting in Dell Sonicwall restricting this?

Pretty sure there is no GPO setup
Hi Expert

I am a a student and I am doing an assignment. I need your help in Installing and configuring a router connected to the LAN and (simulated) WAN. This device should be configured to provide dynamic addresses to connected computers. configure a VPN between two routers in the Network Lab
Install and configure a router connected to the LAN and  WAN. This device should be configured to provide VoIP and Data integrity for security  between two routers in the Network Lab

Note: All computers need to access the printers. Access to the Internet is required

I need a packet tracer file. I have download the packet tracer but it does not have Printer
Using a CISCO RV-320 Router, setup the openvpn settings, and using OpenVPN GUI from openvpn.net as the VPN client software.

My computer works fine when connected to the LAN on a peer-to-peer network, seeing the mapped drive and the PC (as well as the other 2 PCs) that is sharing the drive (all Win10 Pro).

I can connect to the VPN, I can ping the router, I can open the routers web screen on the LAN's subnet 192.168.1.x, but I cannot get to the mapped drive, nor ping any of the 3 pcs on the ptp network.

I am using Symantec Endpoint SBE cloud version and used their tech article TECH227035 to open their recommended ports inbound & outbound and local and remote
UDP 500
UDP 4500
TCP 443
TCP 1701
TCP 1723
as well as OpenVPN's article that also showed these 2 ports and did the same both directions and local and remote
UDP 1194
TPC 943

I am stuck.  I've contacted Symantec tech support, which pointed me to their tech article (which I had used), and searched openvpn.net, but no luck.  The laptop I am using is on a different subnet 192.168.43.x to not conflict with the work subnet (though even when I remoted on a 192.168.1.x subnet, I could still see the CISCO router and ping it, but switched to my hotspot to get on a different subnet to rule out that conflict).
I recently upgraded from a 5505 to a 5508 and due to the new IOS, part of my configuration no longer works. We deal with a 3rd party vendor that requires VPN traffic to come from a specific subnet. So I setup a policy NAT to mask our private IP. Here are both configurations. I am certain I missed something. Thoughts?

ASA Version 8.2(1)

access-list inside_nat2_outbound extended permit ip x.x.x.x
access-list inside_nat2_outbound extended permit ip x.x.x.x
access-list outside_7_cryptomap extended permit ip x.x.x.x
access-list outside_7_cryptomap extended permit ip x.x.x.x
access-list inside_nat10_outbound extended permit ip any any

global (outside) 2
global (outside) 10 interface
nat (inside) 0 access-list inside_nat0_outbound
nat (inside) 2 access-list inside_nat2_outbound
nat (inside) 10 access-list inside_nat10_outbound

crypto ipsec transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac

crypto map outside_map 7 match address outside_7_cryptomap
crypto map outside_map 7 set peer X.X.X.X
crypto map outside_map 7 set transform-set ESP-AES-128-SHA
crypto map outside_map interface outside
crypto isakmp enable outside
crypto isakmp policy 10
 authentication pre-share
 encryption aes
 hash sha
 group 2
 lifetime 86400

tunnel-group X.X.X.X type ipsec-l2l
tunnel-group …
Windows 10 OS trying to RDP over a VPN to a server 2012 R2 with Network  level Authentication enabled
Is bringing up a Windows security screen
the Credentials that were used to connect to XXXXXXXXX did not work. Please enter new credentials
The Logon attempt failed

Other testing
using a Windows 7 OS with older RDP works it brings up the normal windows logon screen and post password fill in brings up certificate of server RDP `ing to
Credentials are fine if a RDP from a server in the domain to this server it works ( so credentials are all fine.

1. We CANNOT remove NLA it MUST stay on the server in question

We give remote financial support (via RDP) to various clients, colleagues and partners.  Recently, we were required by a partner to use a VPN they setup in order to connect to their computer.  We had a concerned due to the nature of VPN regarding traffic at our end (which was answered, see EE question for detail).  

We understand that when we connect to a partners computer using their VPN, their admin can view all the network traffic in our computer; besides the the traffic regarding our support to them, but also whatever internet navigation, or computers locally navigated to, etc.   Our question now is, if possible, How to protect our core network traffic, (the non-partner-support traffic)?
Dear Experts, we need to setup VPN site-to-site connection between Router Cisco 3925 and Firewall Sophos XG210, does anyone have experience? Can you suggest how to and some reference links?
Important Lessons on Recovering from Petya
LVL 11
Important Lessons on Recovering from Petya

In their most recent webinar, Skyport Systems explores ways to isolate and protect critical databases to keep the core of your company safe from harm.

Installing the fortinet vpn on iPhone/pad gave me the following messages:

All activities? If we answer “no” would it make the apps unusable? Is this a concerned if we use the device for other sensitive communication like banking and remote access to other sites?
It should satisfy the following conditions:
1. Capable of 75Mbs bandwidth
2. Up to 25 users
3. Its VPN client must flawlessly work on all client machines including Linux and all modern Windows versions.
4. Costs less that $500

Currently we use a Sonicwall TZ170, its maximum bandwidth is just 25Mbs
If I configure sonic wall tz300 to get WAN ip from Comcast GW DHCP, will I still be able to configure the VPN for remote access?   I am mulling several different topologies, and if this could work this seems like the easiest way.
We were trying into set up a SSL VPN on a TZ215 Sonicwall - which we have done before for other customers but we keep getting Server is not reachable on this one.  We setup HTTPS on user login on Sonicwall; turned on WAN on SSL-VPN, using port 4433; using ten IP's not used on network; used Default DNS settings; added two users, assigned to SSL VPN and Local Subnets.  We are using the latest version of Netextender - checked the server IP by doing a Whatismyip and then used that with :4433 and LocalDomain but keep getting the server is not reachable - have rechecked settings - not sure what else to look at.
I have installed a new RV340W router and have no problem connecting outside routers with VPNs except for one router, It is a FVS318v3 and it will establish Phase 1 but says Phase 2 is idle and wont cnnect or transmit any data? Any help is appreciated. Thank you.
I am trying to piece together some networking equipment at a site that another it person purchased.  
Comcast GW will handle wifi.  Can anyone give me some pointers on how to set up the Comcast GW into a passthru mode, where it will handle the WIFI, but the Sonic Wall will handle outside VPN.
Hello Experts, i recently purchased a used server for building a home lab environment. i would like to install win 7 professional as the servers main OS, then install vmware workstation for my virtual machines for sharepoint, exchange, AD practice. I know i can set up remote access to this server by allowing rdp access from my home router (configuring port forwarding), then rdp from public internet using my home servers public IP. I've already tried this and the server was infected with ransomware. Can anybody tell me how i can make this as secure as possible while on a budget?
I have been running OpenVPN 2/20/2015.  I am the client, it doesnt alwasy conect completely.  What I mean is it says connected but am unable to browse my file folders or mapped drives at work.  This has always been an issue, disconnect, reconnect, disconnect, reboot, reconnect until it eventually connects.

Last week starting on Monday it started kicking me off.  It happens multiple times durring the day.  Sometimes I can reconnect others I am unable and must wait for hours.  Originally it was the ISP provider for work blocking my signal.  It worked ok Tuesday and Wednesday, Thurdsay it kicked me off and had to wait hours to get back on.  This time I was told by our IT person that it was not the ISP.

What can i do to track down my disconnecting issues whether it be my ISP, Laptop or anywhere in between.
Hi, I have used Cisco's RV VPN routers for quite some time, and used the PPtP function on most of them they have always worked, untill now.  By now I mean the last year or so of them, I can enable the server, create the users, but the client errors out when trying to connect.
What does it mean to be "Always On"?
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Just got nbn here and would like to install I believe something called hardware firewall with parental control.  Have son very IT Savvy where software control app apparently won't be sufficient which was what i thought would be needed no nbn installer said I would need better. Son has already set up own vpn but will be accessing my Internet for access so want it set up once and for all so I can ensure access is limited to when and how I allow so ensuring homework and study have a better chance tHan at the moment. Recommendations andcwhy pls. Am in Australia.Thank you
I'm using Cisco VPN client to connect my laptop to my office domain, and to then use RDP. This was working fine, up until Monday. Not working anymore. The VPN connects, but I can't use RDP or ping any of the computers on the network. (I don't know whether I was able to ping before, because I never tried. This laptop is not part of the office domain, in case that matters.)
We were having a bad quality audio during a large conf. call (around 45 attendees) on Lync and customer thinks it is coming from lack of CoS configuration on LAN devices. Do switches (L2) also need to have a CoS Configuration? Is there an approved std. template for Lync Voice/Video ports etc. ?

Hi All,

Got 2 different physical sites, 1 x on & the other on
Sites are connected via VPN & can ping IPS on both side

Site 1: as a primary DC (
Site 2: as a secondary writable DC (

Issue is when the link between both site is down, AD & Group Policy are not working on site 2
I believe that regardless on the status link between both site either AD should be working accordingly?

The VPN type is policy based since it appears route based is not supported on the 5520. I have researched a lot of resources but I'm currently stumped.
Thank you
Hi all I have a site to site VPN connected via two Cisco routers, the tunnels are up but there is only one-way traffic.

Can you please take a look at my configs to see if there's anything I have missed?

(Show crypto isakmp sa) The tunnel is up (QM_IDLE) after attempting a ping to the other side.

(show crypto ipsec sa)
Traffic from SITE A shows getting encapsulated and decapsulated at the other side but nothing returns.
Traffic from SITE B shows getting encapsulated and then nothing on the other side.

I have a feeling whatever is providing the connectivity to SITE Bs WAN port is blocking my traffic but before I start pointing fingers I would like to be sure.

Thanks in advance.






A virtual private network (VPN) is a network that uses a public telecommunication infrastructure, such as the Internet, to provide remote offices or travelling users access to a central organizational network securely. VPNs encapsulate data transfers using secure cryptographic methods and other security mechanisms to ensure that only authorized users can access the network and that the data cannot be intercepted.